Global Patent Index - EP 3552342 A4

EP 3552342 A4 20200527 - METHOD TO CREATE A TRUSTED POOL OF DEVICES

Title (en)

METHOD TO CREATE A TRUSTED POOL OF DEVICES

Title (de)

VERFAHREN ZUR ERSTELLUNG EINES GESICHERTEN VORRICHTUNGSPOOLS

Title (fr)

PROCÉDÉ POUR CRÉER UN GROUPE DE DISPOSITIFS DE CONFIANCE

Publication

EP 3552342 A4 20200527 (EN)

Application

EP 17878635 A 20171205

Priority

  • EP 16202333 A 20161206
  • CA 2017051467 W 20171205

Abstract (en)

[origin: EP3333750A1] The present invention relates to a method to create, by a service provider (ADM), a trusted pool of security devices (SDi) adapted to perform cryptographic operations in a secure service, comprising the steps of: for a service provider (ADM), setting up a secure service by allocating a first device (SD1) in the service, setting (S2) the first security device's clock to a reliable time source (UTS), creating (S5) an internal secure-service-object (SSO) defining at least a service clock-instance (SCI) and service-specific cryptographic keys and certificates used to protect communication between a resource owner's security application (App) and a security device (SD) part of the secure service, said secure-service-object (SSO) being maintained by the security device (SD1) internally preventing any service provider from arbitrarily changing it, when additional security devices (SDi) are required, for the service provider (ADM), adding additional service devices (SDi) to the service through ensuring the two security devices' clocks (Ti) are synchronized by setting (S10) the target service device's clock to an accurate time value (UTS) and defining, in the secure-service-object (SSO), a max-delta-time (MDT) and a max-daily-correction (MDC) per day values limiting the drift between two devices of the pool.

IPC 8 full level

G06F 21/33 (2013.01); G06F 21/60 (2013.01); G06F 21/72 (2013.01); H04L 9/32 (2006.01); H04L 29/06 (2006.01)

CPC (source: EP US)

G06F 21/335 (2013.01 - EP US); G06F 21/602 (2013.01 - US); G06F 21/725 (2013.01 - EP US); H04L 9/3263 (2013.01 - EP); H04L 9/3297 (2013.01 - EP); G06F 2221/2115 (2013.01 - EP US); G06F 2221/2151 (2013.01 - EP US); H04L 63/0815 (2013.01 - EP); H04L 63/0823 (2013.01 - EP); H04L 63/0876 (2013.01 - EP); H04L 2463/121 (2013.01 - EP)

Citation (search report)

  • [A] US 2015134953 A1 20150514 - SEABORN MARK D [US], et al
  • [A] US 2008244094 A1 20081002 - RICH BRUCE ARLAND [US], et al
  • [A] AMAZON WEB SERVICES: "AWS CloudHSM Getting Started Guide", 26 March 2013 (2013-03-26), XP055161498, Retrieved from the Internet <URL:http://awsdocs.s3.amazonaws.com/cloudhsm/latest/hsm-gsg.pdf> [retrieved on 20150112]
  • See references of WO 2018102917A1

Designated contracting state (EPC)

AL AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HR HU IE IS IT LI LT LU LV MC MK MT NL NO PL PT RO RS SE SI SK SM TR

DOCDB simple family (publication)

EP 3333750 A1 20180613; EP 3552342 A1 20191016; EP 3552342 A4 20200527; EP 3552342 B1 20210811; JP 2019537185 A 20191219; JP 6912594 B2 20210804; US 11182463 B2 20211123; US 2020285728 A1 20200910; WO 2018102917 A1 20180614

DOCDB simple family (application)

EP 16202333 A 20161206; CA 2017051467 W 20171205; EP 17878635 A 20171205; JP 2019549617 A 20171205; US 201716464286 A 20171205